[BACK]Return to sshd_config CVS log [TXT][DIR] Up to [cvs.NetBSD.org] / src / crypto / dist / ssh

Annotation of src/crypto/dist/ssh/sshd_config, Revision 1.1.1.6

1.1.1.4   itojun      1: #      $NetBSD$
1.1.1.6 ! itojun      2: #      $OpenBSD: sshd_config,v 1.42 2001/09/20 20:57:51 mouring Exp $
1.1       itojun      3:
                      4: # This is the sshd server system-wide configuration file.  See sshd(8)
                      5: # for more information.
                      6:
                      7: Port 22
                      8: #Protocol 2,1
                      9: #ListenAddress 0.0.0.0
                     10: #ListenAddress ::
1.1.1.5   itojun     11:
                     12: # HostKey for protocol version 1
1.1       itojun     13: HostKey /etc/ssh_host_key
1.1.1.5   itojun     14: # HostKeys for protocol version 2
1.1.1.2   itojun     15: HostKey /etc/ssh_host_rsa_key
1.1       itojun     16: HostKey /etc/ssh_host_dsa_key
1.1.1.5   itojun     17:
                     18: # Lifetime and size of ephemeral version 1 server key
1.1       itojun     19: KeyRegenerationInterval 3600
1.1.1.5   itojun     20: ServerKeyBits 768
1.1       itojun     21:
                     22: # Logging
                     23: SyslogFacility AUTH
                     24: LogLevel INFO
                     25: #obsoletes QuietMode and FascistLogging
                     26:
1.1.1.5   itojun     27: # Authentication:
                     28:
                     29: LoginGraceTime 600
                     30: PermitRootLogin yes
                     31: StrictModes yes
                     32:
                     33: RSAAuthentication yes
                     34: PubkeyAuthentication yes
                     35: #AuthorizedKeysFile    %h/.ssh/authorized_keys
                     36:
                     37: # rhosts authentication should not be used
1.1       itojun     38: RhostsAuthentication no
1.1.1.5   itojun     39: # Don't read the user's ~/.rhosts and ~/.shosts files
                     40: IgnoreRhosts yes
1.1       itojun     41: # For this to work you will also need host keys in /etc/ssh_known_hosts
                     42: RhostsRSAAuthentication no
1.1.1.4   itojun     43: # similar for protocol version 2
                     44: HostbasedAuthentication no
1.1.1.5   itojun     45: # Uncomment if you don't trust ~/.ssh/known_hosts for RhostsRSAAuthentication
                     46: #IgnoreUserKnownHosts yes
1.1       itojun     47:
                     48: # To disable tunneled clear text passwords, change to no here!
                     49: PasswordAuthentication yes
                     50: PermitEmptyPasswords no
                     51:
                     52: # Uncomment to disable s/key passwords
                     53: #ChallengeResponseAuthentication no
                     54:
                     55: # To change Kerberos options
                     56: #KerberosAuthentication no
                     57: #KerberosOrLocalPasswd yes
                     58: #AFSTokenPassing no
                     59: #KerberosTicketCleanup no
                     60:
                     61: # Kerberos TGT Passing does only work with the AFS kaserver
                     62: #KerberosTgtPassing yes
                     63:
1.1.1.5   itojun     64: X11Forwarding no
                     65: X11DisplayOffset 10
                     66: PrintMotd yes
                     67: #PrintLastLog no
                     68: KeepAlive yes
1.1       itojun     69: #UseLogin no
                     70:
                     71: #MaxStartups 10:30:60
                     72: #Banner /etc/issue.net
                     73: #ReverseMappingCheck yes
                     74:
                     75: Subsystem      sftp    /usr/libexec/sftp-server

CVSweb <webmaster@jp.NetBSD.org>